Kubernetes 1.33 “Octarine”: Key Features and Security Enhancements

Kubernetes v1.33, released as "Octarine" on April 23, 2025, introduces a range of enhancements focusing on scalability, security, and developer experience with a total of 64 new features, including 18 stable, 20 beta, and 24 alpha. Among the highlights, sidecar containers have been promoted to stable status, facilitating the deployment of companion processes within the same Pod for improved application management. The release also features in-place pod resizing for seamless resource adjustments, enhanced security through stable bound service account token volumes, and the default enablement of user namespaces for better container isolation. Networking improvements include support for multiple service CIDRs and the maturation of IPv4/IPv6 dual-stack configurations, while the deprecation of the Endpoints API in favor of EndpointSlices reflects a shift toward greater scalability. Additionally, the removal of certain legacy features such as the gitRepo volume type and Windows host networking support marks a focus on security and functionality. Calico Open Source 3.30 complements these updates with enhanced security and observability tools, and the importance of implementing secure SSO and user management is emphasized for maintaining robust security in Kubernetes environments.