The new release of the cloud container engine rolls out Kubernetes version 1.19.8 and several other features. The latest version brings an improved and secure alternative for future workloads. The release replaces the old Kubernetes version 1.15 and will no longer be offered for provisioning new clusters.
We recommend upgrading to version 1.19 to benefit from the security improvements and other core features.
Further features of this release are:
Pod Security Policies (PSP) for Clusters
The pod security policy is a cluster-level resource that controls sensitive security aspects of the pod specification. The PodSecurityPolicy object in Kubernetes defines conditions that a pod must comply with to be accepted by the system.
For more information, see https://kubernetes.io/docs/concepts/policy/pod-security-policy/.
Data disk encryption of a worker node
There is now the option to encrypt the data disks of worker nodes.
Improved enhanced authentication
There is now an option to upload the user's own Proxy Client Certificate and Proxy Client Certificate Private Key to configure the aggregation layer. This option enables, among other things, to implement its own metrics server in conjunction with the Horizontal Pod Autoscaler.
For more information, see https://kubernetes.io/docs/tasks/extend-kubernetes/configure-aggregation-layer/.
Further information can be found in the CCE area of the Help Center.