What’s New in Kubernetes v1.27? Key Features, Upgrades, and Deprecations

Kubernetes v1.27 Release Overview

Kubernetes v1.27 is the first release of 2023, containing 60 enhancements. 18 are in Alpha, 29 in Beta, and 13 have reached stable.

#01 Version Theme and Logo

The theme is “light‑hearted and joyful.” The release was unusually calm, with no exception requests after the feature freeze, thanks to extensive behind‑the‑scenes effort. The logo was designed by Britnee Laverack.

#02 Core Theme

Replace the old image registry k8s.gcr.io with registry.k8s.io. The new registry is community‑controlled and will host future images.

Maintainers must update manifests and Helm charts to the new registry (see https://github.com/kubernetes-sigs/community-images).

End users will no longer receive images from k8s.gcr.io after April; patches for v1.24‑v1.26 will also move.

From v1.25 onward the default registry is registry.k8s.io, and overriding it with the old name will fail for new releases.

Running a private registry is recommended for reliability or restricted network environments.

#03 Feature Upgrades and Deprecations

Stable Graduations

SeccompDefault is now stable; enable with --seccomp-default on kubelet.

Job mutable scheduling directives graduate to GA, allowing pre‑run updates of node affinity, selector, tolerations, etc.

DownwardAPIHugePages is now stable, adding support for hugepages requests/limits.

PodSchedulingReadiness moves to beta, introducing schedulingGates to control when a Pod is considered ready for scheduling.

NodeLogQuery API (alpha) enables fetching node logs via the Kubernetes API.

ReadWriteOncePod access mode is beta, providing exclusive write access to a volume per Pod with scheduler preemption support.

PodTopologySpread now respects matchLabelKeys for easier version‑agnostic spread rules.

SELinux volume relabeling via mount options is beta, speeding up pod startup.

New VolumeManager reconstruction is beta, improving mounted volume discovery during kubelet startup.

Mutable pod scheduling directives (beta) allow limited mutation of scheduling fields before a Pod is scheduled.

Deprecations and Removals

Removed storage.k8s.io/v1beta1 from CSIStorageCapacity.

Removed support for deprecated seccomp annotations.

Removed several command‑line flags: --master-service-namespace, --enable-taint-manager, --pod-eviction-timeout, among others.

Feature gates such as ControllerManagerLeaderMigration, CSI migration, CSIInlineVolume, EphemeralContainers, LocalStorageCapacityIsolation, NetworkPolicyEndPort, StatefulSetMinReadySeconds, IdentifyPodOS, and DaemonSetUpdateSurge have been removed.

#04 Additional Notes

Full release notes are available at https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.27.md and the binary can be downloaded from https://github.com/kubernetes/kubernetes/releases/tag/v1.27.0. You can run a local cluster with Minikube, kind, or install via kubeadm.