Week 25, Jun 15-21, 2026

This week: 47 releases, 168 news items.

👋 Welcome

This week in Cloud Native saw a range of stable releases, with updates spanning networking, orchestration, and security projects. Key developments included Dapr’s new verifiable execution capabilities and multiple patches for core Kubernetes versions. News highlights focused on the expanding role of AI agents, alongside continued discussions on CI/CD security and Kubernetes storage management.

🚀 Notable Releases

Networking

  • coredns/coredns v1.14.4 - Improves transport security with enhancements for DoH3 and DoQ, refines DNSSEC signing behavior, and adds support for the loong64 architecture. Additional features include configurable cache verification and hostname resolution for forward targets.
  • envoyproxy/envoy v1.38.2 - Fixes a runtime guard override removal issue and introduces opt-in histograms for HTTP/2 header statistics, including header-entry count and header-map byte size.
  • envoyproxy/envoy v1.37.4 - Fixes a runtime guard override removal issue and introduces opt-in histograms for HTTP/2 header statistics.
  • envoyproxy/envoy v1.36.8 - Fixes a runtime guard override removal issue and introduces opt-in histograms for HTTP/2 header statistics.
  • envoyproxy/envoy v1.35.12 - Fixes a runtime guard override removal issue and introduces opt-in histograms for HTTP/2 header statistics.
  • antrea-io/antrea v2.6.2 - Migrates the UUID library, updates the lumberjack dependency, and upgrades Kubernetes dependencies to 1.36.1.
  • kubeovn/kube-ovn v1.15.14 - Updates Golang to v0.46.0 and resolves an issue where service/endpointslice enqueueing was not skipped when load balancing is disabled.

Orchestration

Security

  • falcosecurity/falco 0.44.1 - Updates LIBS to version 0.25.4 and DRIVER to version 10.2.0.
  • open-policy-agent/opa v1.17.1 - Updates Go to version 1.26.4 to address standard library vulnerabilities affecting OPA’s HTTP handler and crypto builtins.
  • containers/podman v5.8.3 - Addresses CVE-2026-44517, which involved a vulnerability where ADD or COPY instructions could cause files outside the build context to be included. Updates Buildah to v1.43.2 and gvisor-tap-vsock to v0.8.
  • sigstore/cosign v3.1.1 - Deprecates several flags related to verification material input and the bundle format, with the standardized bundle format now being the default for signing and verifying.
  • aquasecurity/trivy v0.71.1 - Fixes OCI artifact filename validation, forwards ospkg detector options, and loads VEX documents from within the repository directory.

Build

  • dapr/dapr v1.16.15 - Contains a bug fix for Sentry failing to start with “unsupported key type” when the issuer key is Ed25519 or RSA.
  • dapr/dapr v1.18.0 - Introduces optional cryptographic signing and verification for workflow history and attestation for child workflow and activity completions. A new WorkflowAccessPolicy resource controls which application IDs may invoke workflows.
  • helm/helm v4.2.1 - A patch release.
  • helm/helm v3.21.1 - A patch release.
  • backstage/backstage v1.51.2 - Fixes an issue where an empty userSelect parameter caused all users to be dropped in the msgraph module.
  • containers/buildah v1.43.2 - Bumps c/common to v0.67.1, c/image to v5.39.2, and includes a security fix.

Observability

Container Runtime

  • fermyon/spin v4.0.1 - Updates unversioned environments if not recent and includes support for falling back to webpki roots in the default TLS configuration.

Messaging

  • nats-io/nats-server v2.12.11 - Updates Go to version 1.25.11. Fixes a regression in v2.12.7 that could result in “Message Not Found” errors in JetStream when a max messages per subject limit is configured.

Database

Chaos Engineering

  • chaos-mesh/chaos-mesh v2.8.3 - Resolves container image CVEs by upgrading the Go toolchain to 1.25.11 and containerd to 1.7.32. The memStress helper was rebuilt with a modern Go toolchain, and the chaos-daemon image switched to a headless JRE.

Configuration

  • meshery/meshery v1.0.43 - Bumps the shell-quote dependency and fixes broken mesheryctl reference page anchor links.
  • meshery/meshery v1.0.42 - Uses filepath.Join for local provider package location and adds support for installing extensions in the local provider.
  • meshery/meshery v1.0.41 - Skips namespace creation for cluster-scoped resources in CreateK8sResource and fixes a CI workflow condition.
  • meshery/meshery v1.0.40 - Fixes printf-style logging calls flagged by go vet and hardens design import file resolution in the UI.
  • meshery/meshery v1.0.39 - Preserves credential ID when saving connections, fixes rendering of imported designs, and resolves a UI crash in Registry Models.

Service Mesh

  • kumahq/kuma v2.14.0 - Introduces mesh-scoped Zone Ingress/Egress deployments, allowing individual targeting by policy. Sidecar containers are now enabled by default.

Framework

  • kserve/kserve v0.19.0 - Propagates spec.labels and annotations to service for llmisvc, removes incorrect CRDs in llmisvc-crd, and normalizes legacy deploymentMode in status.

📰 This Week in Cloud Native

The Cloud Native ecosystem this week saw significant attention on the expanding capabilities and operational implications of AI agents. Dapr 1.18 introduced verifiable execution, which includes cryptographic signing and verification of workflow history and attestations for child workflow completions. This feature aims to enhance security and detect tampering in distributed applications by providing an auditable execution history. Reports also highlighted developments in AI coding agents, with claims of models outperforming others in coding endurance tests and the emergence of new challenges in debugging and auditing their actions. The increasing autonomy of AI agents, particularly when interacting with production data, emphasizes the need for robust verification and control mechanisms.

Security remained a focus, with projects like Podman addressing vulnerabilities such as CVE-2026-44517, which could lead to unauthorized file inclusion during container image builds. A CNCF blog post outlined strategies for securing CI/CD pipelines through dependency lockdown, aiming to mitigate supply chain risks in open-source projects. Additionally, the External Secrets Operator was presented as a tool to manage secret sprawl in multi-account Kubernetes environments, addressing a common operational challenge.

Updates from major cloud providers included AWS detailing how Amazon EKS Auto Mode integrates with Istio Ambient Mesh to automate infrastructure management and provide mTLS-based service-to-service security. AWS also announced formal verification of the hypervisor in its Nitro Isolation Engine, contributing to the security of EC2 instances. Microsoft Azure DevOps released June patches for its self-hosted server products and continued to recommend migrations to GitHub, citing new AI-powered features like Copilot Autofix and Code Reviews for GitHub Advanced Security and Azure Repos. The Kubernetes SIG Storage group was also spotlighted, discussing its ongoing contributions to persistent storage management within the project.

💬 Community Buzz

Hacker News discussions this week frequently centered on AI agents, covering topics such as running agent code on Kubernetes, tools for managing Kubernetes contexts for SREs and AI agents, and security firewalls designed for agents. Debates also addressed the technical challenges of verifying AI agent behavior and the implications of agents writing to production data.

📊 Numbers of the Week

  • Total stable releases: 40 across 18 projects
  • Top 3 projects by commits this week:
    1. meshery/meshery — 255 commits
    2. kubernetes/kubernetes — 189 commits
    3. cilium/cilium — 152 commits
  • Top 3 projects by merged pull requests this week:
    1. cilium/cilium — 107 merged PRs
    2. kubernetes/kubernetes — 105 merged PRs
    3. envoyproxy/envoy — 104 merged PRs

📚 View all articles from this week →