DevOps Glossary

Discover and learn all DevOps terms here.

Kubernetes Pod Affinity and Anti-Affinity

Kubernetes Pod Affinity and Anti-Affinity are scheduling rules that place pods together or apart using labels and topology.

Kubernetes PodDisruptionBudget (PDB)

Kubernetes PodDisruptionBudget (PDB) limits voluntary pod evictions so a minimum number or percentage stays available.

Kubernetes Pod Security Admission

Kubernetes Pod Security Admission checks pod specs against Pod Security Standards before create or update.

Kubernetes Pod Security Standards (PSS)

Built-in Kubernetes security levels that restrict what pods can do, like running as root or using privileged access.

Kubernetes Pod Topology Spread Constraints

Kubernetes Pod Topology Spread Constraints are scheduler rules that spread pods across zones or nodes to cut skew.

Kubernetes PriorityClass

Kubernetes PriorityClass sets pod priority, allowing critical workloads to preempt lower-priority pods when cluster resources are scarce.

Kubernetes RBAC

Kubernetes RBAC controls which users, groups, or service accounts can perform actions on cluster resources to limit access.

Kubernetes Readiness Probe

A Kubernetes readiness probe checks whether a pod is ready for traffic before adding it to Service endpoints.

Kubernetes ReplicaSet

A Kubernetes ReplicaSet keeps a set number of matching pods running in a cluster, replacing failed ones as needed.

Kubernetes ResourceQuota

Kubernetes ResourceQuota is a namespace limit for CPU, memory, storage, and objects that controls cluster use.

Kubernetes Resource Requests and Limits

Kubernetes resource requests and limits set pod CPU and memory needs and caps, guiding scheduling and capping use.

Kubernetes Role

Kubernetes Role is a namespaced RBAC object that defines allowed actions on resources, applied through RoleBindings.

Kubernetes RoleBinding

Kubernetes RoleBinding assigns a Role’s namespace permissions to users, groups, or service accounts for RBAC control.

Kubernetes Secret

A Kubernetes Secret is an API object for sensitive data, such as tokens or passwords, used by pods.

Kubernetes SecurityContext

Kubernetes SecurityContext defines Pod or container security settings, controlling runtime privileges, user IDs, and Linux capabilities.

Kubernetes Service

A Kubernetes Service is a stable network endpoint that exposes pods and routes traffic within or outside a cluster.

Kubernetes ServiceAccount

A Kubernetes ServiceAccount is an identity for pods to authenticate to the API server and access cluster resources.

Kubernetes StatefulSet

Kubernetes StatefulSet is a workload API object for stateful pods, giving each pod stable identity and storage.

Kubernetes StorageClass

Kubernetes StorageClass defines volume provisioning settings for PVCs, letting teams request storage by class.

Kubernetes Taints and Tolerations

Kubernetes taints and tolerations control scheduling by marking nodes and allowing only matching pods to run there.

Kubernetes ValidatingAdmissionPolicy

Kubernetes ValidatingAdmissionPolicy validates API requests with CEL rules before storage as admission control.

Kubernetes ValidatingAdmissionWebhook

Kubernetes ValidatingAdmissionWebhook is an admission webhook that accepts or rejects API requests before storage.

Kubernetes VerticalPodAutoscaler (VPA)

Kubernetes VerticalPodAutoscaler (VPA) adjusts pod CPU and memory requests based on workload usage for better scheduling.

Kubernetes Volume

Kubernetes Volume is a storage resource attached to a pod, used to persist or share data across containers.