RATATOSKRATATOSK
로그인

Kubeflow

v1.10.2AI & ML
2025년 7월 18일

한국어 준비 중Kubeflow Platform 1.10.2 is primarily a maintenance release, with the main operator-relevant change being a default switch to Istio CNI alongside an Istio 1.26.1 upgrade that merges Istio and Istio CNI configuration. Static PSS files are also removed in favor of script-applied security labels, and the rest of the release is bug fixes, dependency bumps, and smaller enhancements.

  • breakingDefault networking switches to Istio CNI

    Kubeflow now defaults to Istio CNI instead of the previous networking setup. Review existing Istio-related manifests and CNI configuration before upgrading, since the switch can change how pod networking is provisioned in your cluster.

  • breakingIstio upgraded to 1.26.1 with merged config

    Istio has been bumped to 1.26.1, with Istio and Istio CNI configuration now merged into a single config. If you maintain custom Istio manifests or overlays, check them against the new merged structure before applying this release.

  • breakingStatic PSS files removed in favor of script-applied labels

    Static PSS (Pod Security Standards) files have been removed; security labels are now applied dynamically by the enable-PSS scripts instead. Any tooling or automation that reads or patches the old static PSS files will need to be updated to use the new script-based flow.

주요 변경 (6)

  • Istio CNI is now the default networking mode, and Istio itself is upgraded to 1.26.1 with Istio/Istio CNI configuration merged
  • Static PSS files removed; PSS security labels are now applied directly by the enable-PSS scripts
  • Dependency updates: kubeflow/model-registry manifests to v0.2.19, kubeflow/spark-operator manifests to 2.2.0, busybox images migrated to ghcr
  • Enhancements: KServe path-based routing, Helm chart support for Model Registry, namespace isolation for V1 pipeline workflows with SeaweedFS plus a new CI security test
  • Bug fixes: seaweedfs PSS warnings, spark-operator script sed pattern, pipeline application command, and Dex issuer README example
  • Plus minor housekeeping: resource usage checks in integration tests, OpenSSF badge and updated security docs, test file renaming