Blog
Welcome to the Cozystack blog! Here you’ll find the latest news, updates, and insights about Cozystack platform.
Posts in 2025
Talm v0.17: Built-in Age Encryption for Secrets Management
2025-12-17 in Blog
tl;dr: Talm v0.17 introduces built-in age encryption for secure secrets management, making it easier to store sensitive configuration files in Git repositories while maintaining security best practices.
Talm v0.17: Built-in Age Encryption for Secrets Management The latest release of Talm, the configuration manager for Talos Linux, introduces a powerful new feature: built-in encryption using the age encryption tool. This enhancement allows you to securely store sensitive configuration files like secrets.yaml, talosconfig, and kubeconfig in Git repositories while following security best practices. …
Flux-aio, Kubernetes mTLS and the Chicken and Egg Problem
2025-12-12 in Blog
tl;dr: How we solved the chicken-and-egg problem of deploying CNI and kube-proxy through Flux while ensuring Flux itself works without CNI and kube-proxy, using Kubernetes API routing and mTLS certificates.
Here at Cozystack, we’re once again solving the chicken-and-egg problem: how to deploy CNI and kube-proxy through Flux, while ensuring Flux itself works without CNI and kube-proxy. Flux can be started without CNI and kube-proxy using the flux-aio project (by the creator of Flux), which runs a single deployment with all controllers configured to communicate with each other via localhost. The …
Cozystack v0.38: Virtual Private Cloud, VNC Console, Configurable Worker K8s Versions, and HTTPS Enforcement
2025-11-25 in Blog
tl;dr: Cozystack v0.38 introduces Virtual Private Cloud with Multus CNI, VNC console for VMs in the dashboard, configurable Kubernetes worker versions, and HTTPS-only enforcement for the API.
Cozystack v0.38: Virtual Private Cloud, VNC Console, Configurable Worker K8s Versions, and HTTPS Enforcement Version 0.38 brings network isolation capabilities, improved VM access, and security hardening across the platform. Major Features and Improvements Virtual Private Cloud (VPC) The headline feature of v0.38 is VPC support with Multus CNI integration. Operators can now create isolated virtual …
CozySummit lineup is out!
2025-10-14 in Blog
tl;dr: Yaaay! We’ve published the schedule for CozySummit 2025 Virtual — an online conference for Cozystack developers and users, hosted together…
👻 CozySummit lineup is out! Yaaay! We’ve published the schedule for CozySummit 2025 Virtual — an online conference for Cozystack developers and users, hosted together with the CNCF. The talk lineup looks great. Just look at that! Wednesday, December 3, 2025 16:00 CET (9:00 AM CT) Opening/Intro by Andrei Kvapil, Cozystack Maintainer, Ænix CEO&Founder 16:05 CET (9:05 AM CT) “How we build a …
Cozystack v0.37: OpenAPI Dashboard, Lineage Webhook, PVC Expansion in Tenants, and SeaweedFS S3 Discovery
2025-10-10 in Blog
tl;dr: Cozystack v0.37 replaces the old UI with a new OpenAPI-based Dashboard, introduces the Lineage Webhook for resource tracking, enables PVC expansion in tenant clusters, and makes SeaweedFS S3 buckets discoverable.
Cozystack v0.37: OpenAPI Dashboard, Lineage Webhook, PVC Expansion in Tenants, and SeaweedFS S3 Discovery Version 0.37 is a major release that overhauls the platform UI and introduces powerful new infrastructure capabilities. Major Features and Improvements New OpenAPI-Based Dashboard The old Kubeapps-based UI is replaced with a brand-new OpenAPI-based Dashboard. The new dashboard features …
Cozystack applied to CNCF Incubated
2025-10-08 in Blog
tl;dr: We’ve just submitted our application to move from CNCF Sandbox to Incubated. We’d love your support — drop a like to cheer us on. It won’t…
Cozystack applied to CNCF Incubated We’ve just submitted our application to move from CNCF Sandbox to Incubated. We’d love your support — drop a like to cheer us on. It won’t sway the TOC’s decision, but it means a lot to us. Why it matters: CNCF Incubating signals a more mature project that’s ready for production use. It also attracts contributors and unlocks extra CNCF opportunities to help us …
Cozystack v0.36
2025-10-01 in Blog
tl;dr: The new version of Cozystack focuses on the stability, observability, and flexible configuration of managed applications.
😜 Cozystack v0.36: Server-side Encryption for S3, Kube-OVN Cluster Health Monitor, REST API Documentation The new version of Cozystack focuses on the stability, observability, and flexible configuration of managed applications. 👉 Major Features and Improvements Per-Namespace Resource Limits for Tenants Resource management for Cozystack tenants has received a final patch and is now graduated to a …
Protofire Experience Operating Kubernetes with Cozystack
2025-09-10 in Blog
tl;dr: In a recent infrastructure transition that spanned several months, our team explored alternative container orchestration platforms to…
Protofire Experience Operating Kubernetes with Cozystack In a recent infrastructure transition that spanned several months, our team explored alternative container orchestration platforms to simplify operations and optimize costs. At the time, our environment consisted of nearly a hundred AWS accounts running multiple ECS services, along with managed PostgreSQL, Redis, RabbitMQ, and ALBs. One of …
New CNCF Webinar: Building Your Own Cloud Platform with Open Source
2025-09-05 in Blog
tl;dr: We’re excited to share Andrey Kvapil’s webinar for CNCF! He dives deep into how to build a powerful cloud platform using open-source…
New CNCF Webinar: Building Your Own Cloud Platform with Open Source We’re excited to share Andrey Kvapil’s webinar for CNCF! He dives deep into how to build a powerful cloud platform using open-source components. Inside, you’ll find: Architectural approaches & API design How to select the right components Strategies to integrate them into a robust infrastructure solution This is a must-watch …
CNCF Webinar: One API to Rule Them All — Building a Unified Platform with Kubernetes Aggregation
2025-09-03 in Blog
tl;dr: Speaker: Andrei Kvapil, Ænix CEO, Cozystack maintainer
CNCF Webinar: One API to Rule Them All — Building a Unified Platform with Kubernetes Aggregation Speaker: Andrei Kvapil, Ænix CEO, Cozystack maintainer When: Sep, 4 How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a …