kubernetes.io

Configure a Kubernetes PodDisruptionBudget to protect a stateful application during node drain and rolling upgrades

Configure Kubernetes NetworkPolicy to implement a default-deny posture and selectively allow ingress from a specific service

Configure Kubernetes topology spread constraints with matchLabelKeys to distribute pods across availability zones using rolling-update-aware spreading

Define a Kubernetes CRD with OpenAPI v3 schema validation using apiextensions.k8s.io/v1

Implement finalizers in a Kubernetes operator for clean external resource deletion

Use owner references to enable automatic garbage collection of child resources in an operator

Implement the status subresource in a Kubernetes CRD and update it from the controller

Build and deploy a validating admission webhook for a Kubernetes CRD

Implement a mutating admission webhook to inject a sidecar container into pods

Configure a CRD conversion webhook to support multiple API versions

Write a ValidatingAdmissionPolicy using CEL expressions to enforce resource limits

Configure a PodDisruptionBudget to protect a workload during voluntary disruptions

Configure HorizontalPodAutoscaler v2 with custom and external metrics

Configure topology spread constraints to distribute pods evenly across availability zones

Create RBAC Role and RoleBinding to grant least-privilege access within a namespace

Implement a NetworkPolicy default-deny posture and selectively open traffic

Configure securityContext and Pod Security Admission to enforce restricted pod standards

Build a Kustomize component that adds a common sidecar container and shared volume across multiple overlays without duplicating the patch in each overlay

Configure a Kubernetes admission webhook with cert-manager for TLS provisioning and implement a ValidatingWebhookConfiguration to enforce custom policies

Configure VPA (Vertical Pod Autoscaler) in recommendation mode alongside HPA to gather right-sizing data without automatic eviction, and understand the conflict constraints