Knative
knative-v1.22.0Orchestration & ManagementKnative v1.22.0 completes the EndpointSlices migration, consolidates TLS configuration across all components, and adds new autoscaling observability metrics.
enhancementScrape the new queue/active request metrics for autoscaling tuning
kn.revision.request.queued and kn.revision.request.active are now available from queue-proxy. If you're tuning concurrency targets or debugging cold-start behavior, add these to your Prometheus scrape config and dashboards. They give you direct visibility into the queue depth per revision, which was previously only inferable from aggregate metrics.
enhancementVerify RBAC if running with minimal cluster permissions
The ClusterRole now includes endpointslices/restricted permissions to support the EndpointSlices migration. If your cluster uses OPA, Kyverno, or any policy engine that audits ClusterRole changes, review and approve the updated role during upgrade. Missing this permission would break autoscaler stat forwarding.
enhancementGraceful WebSocket shutdown reduces in-flight request drops during scale-down
The queue-proxy now shuts down WebSocket connections gracefully. If your services handle WebSocket traffic, this directly reduces dropped connections during rolling updates or scale-to-zero events. No configuration change needed — the improvement is automatic on upgrade.
Key changes (5)
- Autoscaler stat forwarder and e2e tests fully migrated to EndpointSlices — Endpoints API usage continues to shrink
- TLS configuration unified across reconciler, activator, and queue-proxy using knative.dev/pkg/network/tls
- Two new metrics added: kn.revision.request.queued and kn.revision.request.active for better autoscaling visibility
- Autoscaler now uses the /scale subresource for replica count updates instead of patching deployments directly
- Deployment reconciliation optimized — updates only trigger on actual label, annotation, or spec changes