🎉 The recording of our TIC presentation is now available!
In this session, we outline how we built a unified platform, standardized the un-standardizable, and leveraged the Kubernetes API Aggregation Layer to make it all work.
https://www.youtube.com/watch?v=7sx7oV25zYc
In this session, we outline how we built a unified platform, standardized the un-standardizable, and leveraged the Kubernetes API Aggregation Layer to make it all work.
https://www.youtube.com/watch?v=7sx7oV25zYc
YouTube
Platformize It! Building a Unified and Extensible Platform Framework / Andrei Kvapil (Ænix)
How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a general-purpose API—without…
❤2
😎 Cozystack v0.34: K8s Version Selection and PVC Snapshots in Tenants, Windows and RouterOS on VMs, VPA for VPA
Our maintainers and contributors never stand still, and we’re already ready to present the next stable release of Cozystack v0.34. In this release, we continued working on expanding the functionality of the Vertical Pod Autoscaler, improving tenant clusters, enhancing the backup system, and moving toward platform decomposition. Below, we’ll cover the most important changes, and you can find the full list of fixes in the links at the end of the announcement.
Major Features and Improvements
- Enable users to select Kubernetes versions in tenant clusters. Supported versions range from 1.28 to 1.33, updated to the latest patches.
- Enable PVC snapshot capability in tenant Kubernetes clusters.
- Implement autoscaling for the Vertical Pod Autoscaler itself, ensuring that VPA has sufficient resources and reducing the number of configuration parameters that platform administrators have to manage.
- Enable running Windows and MikroTik RouterOS in Cozystack VMs. Add the bus option and always specify
- Explain how to back up and restore PostgreSQL using Velero backups.
- Support multi-zone configuration for S3 storage.
- Put YAML editor first when deploying and upgrading applications, as a more powerful option. Fix handling multiline strings.
- Numerous API improvements and progress toward the new UI: OpenAPI schema for apps, OpenAPI Schema refactoring, using singular resource names in Cozystack API.
Security
- Ensure that JWT signing keys in the SeaweedFS security configuration remain consistent across Helm upgrades. Resolve an upstream issue.
New components versions
- FerretDB v2.4.0 (breaking change! before upgrading FerretDB instances, back up and restore the data following the migration guide).
- Talos Linux v1.10.5.
- LINSTOR v1.31.2.
- KubeVirt v1.5.2.
- CDI v1.62.0.
- Flux Operator 0.24.0.
- Kamaji to edge-25.7.1.
- Kube-OVN to v1.13.14.
- Cilium to v1.17.5.
- MariaDB Operator to v0.38.1.
- SeaweedFS to v3.94.
New Documentation
- Updated Cozystack Roadmap and Backlog for 2024-2026.
- Running Windows VMs.
- Running MikroTik RouterOS VMs.
- Public-network Kubernetes Deployment.
- How to allocate space on system disk for user storage.
- Resource Management in Cozystack.
- Key Concepts of Cozystack.
- Cozystack Architecture and Platform Stack.
Development, Testing, and CI/CD
- Improve workflow for contributors submitting PRs from forks. Use Oracle Cloud Infrastructure Registry for non-release PRs, bypassing restrictions preventing pushing to ghcr.io with default GitHub token.
All changes: v0.34.3, v0.34.2, v0.34.1, v0.34.0
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
Our maintainers and contributors never stand still, and we’re already ready to present the next stable release of Cozystack v0.34. In this release, we continued working on expanding the functionality of the Vertical Pod Autoscaler, improving tenant clusters, enhancing the backup system, and moving toward platform decomposition. Below, we’ll cover the most important changes, and you can find the full list of fixes in the links at the end of the announcement.
Major Features and Improvements
- Enable users to select Kubernetes versions in tenant clusters. Supported versions range from 1.28 to 1.33, updated to the latest patches.
- Enable PVC snapshot capability in tenant Kubernetes clusters.
- Implement autoscaling for the Vertical Pod Autoscaler itself, ensuring that VPA has sufficient resources and reducing the number of configuration parameters that platform administrators have to manage.
- Enable running Windows and MikroTik RouterOS in Cozystack VMs. Add the bus option and always specify
bootOrder for all disks.- Explain how to back up and restore PostgreSQL using Velero backups.
- Support multi-zone configuration for S3 storage.
- Put YAML editor first when deploying and upgrading applications, as a more powerful option. Fix handling multiline strings.
- Numerous API improvements and progress toward the new UI: OpenAPI schema for apps, OpenAPI Schema refactoring, using singular resource names in Cozystack API.
Security
- Ensure that JWT signing keys in the SeaweedFS security configuration remain consistent across Helm upgrades. Resolve an upstream issue.
New components versions
- FerretDB v2.4.0 (breaking change! before upgrading FerretDB instances, back up and restore the data following the migration guide).
- Talos Linux v1.10.5.
- LINSTOR v1.31.2.
- KubeVirt v1.5.2.
- CDI v1.62.0.
- Flux Operator 0.24.0.
- Kamaji to edge-25.7.1.
- Kube-OVN to v1.13.14.
- Cilium to v1.17.5.
- MariaDB Operator to v0.38.1.
- SeaweedFS to v3.94.
New Documentation
- Updated Cozystack Roadmap and Backlog for 2024-2026.
- Running Windows VMs.
- Running MikroTik RouterOS VMs.
- Public-network Kubernetes Deployment.
- How to allocate space on system disk for user storage.
- Resource Management in Cozystack.
- Key Concepts of Cozystack.
- Cozystack Architecture and Platform Stack.
Development, Testing, and CI/CD
- Improve workflow for contributors submitting PRs from forks. Use Oracle Cloud Infrastructure Registry for non-release PRs, bypassing restrictions preventing pushing to ghcr.io with default GitHub token.
All changes: v0.34.3, v0.34.2, v0.34.1, v0.34.0
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
🔥8👍4❤1
😍 Amazing news! Invitation to CozySummit Virtual – December 3
Join us on December 3 for CozySummit Virtual, the first conference for CozyStack developers and users.
📢 CFP is open until September 14 – submit your talk and become one of the first speakers at our event!
CozySummit Virtual is organized by CNCF with the support of CozyStack maintainers and project sponsors.
Suggested Session Topics:
1. Taking on the Giants: How Local ISPs Can Compete with Hyperscalers Using Cozystack
2. How Companies Can Avoid Being Locked in Public Clouds
3. Contributing to Cozystack
4. Powering AI: Running Demanding Workloads on Cozystack (VMs & K8s)
👉 Conference website
👉 CFP
Join us on December 3 for CozySummit Virtual, the first conference for CozyStack developers and users.
📢 CFP is open until September 14 – submit your talk and become one of the first speakers at our event!
CozySummit Virtual is organized by CNCF with the support of CozyStack maintainers and project sponsors.
Suggested Session Topics:
1. Taking on the Giants: How Local ISPs Can Compete with Hyperscalers Using Cozystack
2. How Companies Can Avoid Being Locked in Public Clouds
3. Contributing to Cozystack
4. Powering AI: Running Demanding Workloads on Cozystack (VMs & K8s)
👉 Conference website
👉 CFP
🔥5
😜 Cozystack v0.35: External Application Sources, Dedicated S3 Clusters and Monitoring, Hetzner RobotLB Support
The new version of Cozystack takes a major step forward in its modular (or: decomposed) architecture, enabling users to swiftly integrate custom applications and services. This significantly extends the platform's out-of-the-box functionality to meet specific business needs. And there's more!
👉 Major Features and Improvements
External Application Sources in Cozystack
Cozystack now supports adding external application packages to the platform's application catalog. Platform administrators can include custom or third-party applications alongside built-in ones, using the Cozystack API.
Adding an application requires making an application package, similar to the ones included in Cozystack under packages/apps. Using external packages is enabled by a new CustomResourceDefinition (CRD) called CozystackResourceDefinition and a corresponding controller (reconciler) that watches for these resources.
Add your own managed application using the documentation and an example at github.com/cozystack/external-apps-example.
Cozystack API Improvements
This release brings significant improvements to the OpenAPI specs for all managed applications in Cozystack, including databases, tenant Kubernetes, virtual machines, monitoring, and others. These changes include more precise type definitions for fields that were previously defined only as generic objects, and many fields now have value constraints. Now many possible misconfigurations are detected immediately upon API request, and not later, with a failed deployment.
The Cozystack API now also displays default values for the application resources. Most other fields now have sane default values when such values are possible.
All these changes pave the road for the new Cozystack UI, which is currently under development.
Hetzner RobotLB Support
MetalLB, the default load balancer included in Cozystack, is built for bare metal and self-hosted VMs, but is not supported on most cloud providers. For example, Hetzner provides its own RobotLB service, which Cozystack now supports as an optional component.
Read the updated guide on deploying Cozystack on Hetzner.com to learn more and deploy your own Cozystack cluster on Hetzner.
S3 Service: Dedicated Clusters and Monitoring
You can now deploy dedicated Cozystack clusters to run the S3 service, powered by SeaweedFS. Thanks to the support for integration with remote filer endpoints, you can connect your primary Cozystack cluster to use S3 storage in a dedicated cluster.
For security, platform administrators can now configure the SeaweedFS application with a list of IP addresses or CIDR ranges that are allowed to access the filer service.
SeaweedFS has also been integrated into the monitoring stack and now has its own Grafana dashboard. Together, these enhancements help Cozystack users build a more reliable, scalable, and observable S3 service.
ClickHouse Keeper
The ClickHouse application now includes a ClickHouse Keeper service to improve cluster reliability and availability. This component is deployed by default with every ClickHouse cluster.
Learn more in the ClickHouse configuration reference.
👉 New components versions
Update flux-operator to 0.28.0.
👉 New Documentation
- Reimplement Cozystack Roadmap as a GitHub project.
- SeaweedFS Multi-DC Configuration.
- Troubleshooting Kube-OVN.
- Installing Talos with kexec.
- Rewrite Cozystack tutorial.
- How to install Cozystack in Hetzner.
- Adding External Applications to Cozystack Catalog.
- Creating and Using Named VM Images (Golden Images).
- Creating Encrypted Storage on LINSTOR.
- Adding and removing components on Cozystack installation using bundle-enable and bundle-disable.
- Restructure Cozystack documentation. Bring managed Kubernetes, managed applications, virtualization, and networking guides to the top level.
All changes: v0.35.0, v0.35.1
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
The new version of Cozystack takes a major step forward in its modular (or: decomposed) architecture, enabling users to swiftly integrate custom applications and services. This significantly extends the platform's out-of-the-box functionality to meet specific business needs. And there's more!
👉 Major Features and Improvements
External Application Sources in Cozystack
Cozystack now supports adding external application packages to the platform's application catalog. Platform administrators can include custom or third-party applications alongside built-in ones, using the Cozystack API.
Adding an application requires making an application package, similar to the ones included in Cozystack under packages/apps. Using external packages is enabled by a new CustomResourceDefinition (CRD) called CozystackResourceDefinition and a corresponding controller (reconciler) that watches for these resources.
Add your own managed application using the documentation and an example at github.com/cozystack/external-apps-example.
Cozystack API Improvements
This release brings significant improvements to the OpenAPI specs for all managed applications in Cozystack, including databases, tenant Kubernetes, virtual machines, monitoring, and others. These changes include more precise type definitions for fields that were previously defined only as generic objects, and many fields now have value constraints. Now many possible misconfigurations are detected immediately upon API request, and not later, with a failed deployment.
The Cozystack API now also displays default values for the application resources. Most other fields now have sane default values when such values are possible.
All these changes pave the road for the new Cozystack UI, which is currently under development.
Hetzner RobotLB Support
MetalLB, the default load balancer included in Cozystack, is built for bare metal and self-hosted VMs, but is not supported on most cloud providers. For example, Hetzner provides its own RobotLB service, which Cozystack now supports as an optional component.
Read the updated guide on deploying Cozystack on Hetzner.com to learn more and deploy your own Cozystack cluster on Hetzner.
S3 Service: Dedicated Clusters and Monitoring
You can now deploy dedicated Cozystack clusters to run the S3 service, powered by SeaweedFS. Thanks to the support for integration with remote filer endpoints, you can connect your primary Cozystack cluster to use S3 storage in a dedicated cluster.
For security, platform administrators can now configure the SeaweedFS application with a list of IP addresses or CIDR ranges that are allowed to access the filer service.
SeaweedFS has also been integrated into the monitoring stack and now has its own Grafana dashboard. Together, these enhancements help Cozystack users build a more reliable, scalable, and observable S3 service.
ClickHouse Keeper
The ClickHouse application now includes a ClickHouse Keeper service to improve cluster reliability and availability. This component is deployed by default with every ClickHouse cluster.
Learn more in the ClickHouse configuration reference.
👉 New components versions
Update flux-operator to 0.28.0.
👉 New Documentation
- Reimplement Cozystack Roadmap as a GitHub project.
- SeaweedFS Multi-DC Configuration.
- Troubleshooting Kube-OVN.
- Installing Talos with kexec.
- Rewrite Cozystack tutorial.
- How to install Cozystack in Hetzner.
- Adding External Applications to Cozystack Catalog.
- Creating and Using Named VM Images (Golden Images).
- Creating Encrypted Storage on LINSTOR.
- Adding and removing components on Cozystack installation using bundle-enable and bundle-disable.
- Restructure Cozystack documentation. Bring managed Kubernetes, managed applications, virtualization, and networking guides to the top level.
All changes: v0.35.0, v0.35.1
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
1🔥7❤2
🎥 Cozystack community meeting 2025-08-21: New UI progress, Decomposition, CozySummit
https://youtu.be/jRlhcWMzPLg
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- CozySummit CFP CFP Open!
https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- Platformize It! Building a Unified and Extensible Platform Framework https://www.youtube.com/watch?v=7sx7oV25zYc
- Seaweedfs MultiDC configuration:
https://cozystack.io/docs/operations/stretched/seaweedfs-multidc
- Boot-to-talos method https://cozystack.io/docs/install/talos/boot-to-talos, https://github.com/cozystack/boot-to-talos
- New dashboard updates https://github.com/cozystack/cozystack/pull/1269, https://github.com/orgs/cozystack/projects/1/views/2?pane=issue&itemId=121273835&issue=cozystack%7Ccozystack%7C1252
- Decomposition flow
Open Floor:
- Move out existing apps from the cozystack repository
- External nodes provisioning (BYOH model)
- Any atomic OS for Kubernetes?
- Cluster Management
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
https://youtu.be/jRlhcWMzPLg
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- CozySummit CFP CFP Open!
https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- Platformize It! Building a Unified and Extensible Platform Framework https://www.youtube.com/watch?v=7sx7oV25zYc
- Seaweedfs MultiDC configuration:
https://cozystack.io/docs/operations/stretched/seaweedfs-multidc
- Boot-to-talos method https://cozystack.io/docs/install/talos/boot-to-talos, https://github.com/cozystack/boot-to-talos
- New dashboard updates https://github.com/cozystack/cozystack/pull/1269, https://github.com/orgs/cozystack/projects/1/views/2?pane=issue&itemId=121273835&issue=cozystack%7Ccozystack%7C1252
- Decomposition flow
Open Floor:
- Move out existing apps from the cozystack repository
- External nodes provisioning (BYOH model)
- Any atomic OS for Kubernetes?
- Cluster Management
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
YouTube
Cozystack community meeting 2025-08-21: New UI progress, Decomposition, CozySummit
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
🔥6
👋 Hello, dear Cozystack community members!
We recently announced CozySummit Virtual, event we made with CNCF. It's an online conference for Cozystack users and contributors and we'll be glad if you can join us and apply with CFP. CFP will be closed 14th September so it would be great if you get it next week or even this weekend.
You can talk about using Cozystack, explain how to debug it, how to build something cool with it. Or even how to use one of Cozy components.
It's a first CozySummit and your talks will become The History of computer science very quickly. Like first WWW page by Tim Berners Lee or some "QWERTYUIOP" by Ray Tomlinson🤣 So throw away all your doubts and shyness and push these damn links in the end of this post😎
Link on event: https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
Link on CFP: https://sessionize.com/CozySummit_2025
We recently announced CozySummit Virtual, event we made with CNCF. It's an online conference for Cozystack users and contributors and we'll be glad if you can join us and apply with CFP. CFP will be closed 14th September so it would be great if you get it next week or even this weekend.
You can talk about using Cozystack, explain how to debug it, how to build something cool with it. Or even how to use one of Cozy components.
It's a first CozySummit and your talks will become The History of computer science very quickly. Like first WWW page by Tim Berners Lee or some "QWERTYUIOP" by Ray Tomlinson🤣 So throw away all your doubts and shyness and push these damn links in the end of this post😎
Link on event: https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
Link on CFP: https://sessionize.com/CozySummit_2025
🔥3❤2🖕1
🔴 CNCF Webinar: One API to Rule Them All - Building a Unified Platform with Kubernetes Aggregation
Speaker: Andrei Kvapil, Ænix CEO, Cozystack maintainer
How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a general-purpose API—without using etcd.
Discover how they built a dynamic API server, a universal GUI for operators, and a real-time billing system using Prometheus. A deep dive into platform engineering and the practical challenges of building open-source cloud platforms.
👉 Registration page
Speaker: Andrei Kvapil, Ænix CEO, Cozystack maintainer
How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a general-purpose API—without using etcd.
Discover how they built a dynamic API server, a universal GUI for operators, and a real-time billing system using Prometheus. A deep dive into platform engineering and the practical challenges of building open-source cloud platforms.
👉 Registration page
🔥8🥰1
🚀 New CNCF Webinar: Building Your Own Cloud Platform with Open Source
We're excited to share Andrey Kvapil's webinar for CNCF! He dives deep into how to build a powerful cloud platform using open-source components.
Inside, you'll find:
▸ Architectural approaches & API design
▸ How to select the right components
▸ Strategies to integrate them into a robust infrastructure solution
This is a must-watch for:
✅ Companies looking to migrate from public cloud to their own or leased servers
✅ Hosting & service providers aiming to compete with hyperscalers like AWS
Watch now! 👉 https://www.youtube.com/watch?v=L7CaagCxd3k
We're excited to share Andrey Kvapil's webinar for CNCF! He dives deep into how to build a powerful cloud platform using open-source components.
Inside, you'll find:
▸ Architectural approaches & API design
▸ How to select the right components
▸ Strategies to integrate them into a robust infrastructure solution
This is a must-watch for:
✅ Companies looking to migrate from public cloud to their own or leased servers
✅ Hosting & service providers aiming to compete with hyperscalers like AWS
Watch now! 👉 https://www.youtube.com/watch?v=L7CaagCxd3k
YouTube
CNCF On-Demand: One API to Rule Them All - Building a Unified Platform with Kubernetes Aggregation
How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a general-purpose API—without…
1🔥4❤1👀1
🎥 Cozystack community meeting 2025-09-04: Cozy CLI, New Dashboard, CozySummit CFP, Network policies
https://youtu.be/hnbTzt7-Rao
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- New dashboard demo
- Cozy CLI demo
- Network policies design review
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
https://youtu.be/hnbTzt7-Rao
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- New dashboard demo
- Cozy CLI demo
- Network policies design review
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
YouTube
Cozystack community meeting 2025-09-04: Cozy CLI, New Dashboard, CozySummit CFP, Network policies
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
👍2🔥2❤1
📌 Protofire Experience Operating Kubernetes with Cozystack
In a recent infrastructure transition that spanned several months, our team explored alternative container orchestration platforms to simplify operations and optimize costs. At the time, our environment consisted of nearly a hundred AWS accounts running multiple ECS services, along with managed PostgreSQL, Redis, RabbitMQ, and ALBs.
One of the goals was to consolidate our deployment architecture under Kubernetes while maintaining support for stateful services, without introducing significant operational complexity. After evaluating different options, we decided to adopt Cozystack, primarily due to its all-in-one approach and compatibility with bare-metal infrastructure.
Cozystack is built on Talos Linux, which provides immutable and secure nodes, and includes a set of pre-packaged Helm-ready applications such as PostgreSQL, Redis, RabbitMQ, and Ingress-NGINX. These built-in components allowed us to accelerate the initial setup while maintaining flexibility for customization.
Currently, we manage two Kubernetes clusters—each composed of three control-plane and three worker nodes, with capacity planned for scaling. Based on our infrastructure modeling and cost tracking, we expect a 7× to 10× reduction in spend compared to our previous AWS setup.
During the initial phase, migrating and tuning each environment, including adapting Helm charts, took more than a day. Through iteration and process improvements, we’ve since reduced this time: today, standard environments can be provisioned and configured in roughly one day.
We also restructured our observability tooling during this process. We adopted Loki for centralized log collection, complementing the existing metrics and Grafana dashboards already available through the platform.
Cozystack’s recent joining CNCF Sandbox gave us additional reassurance regarding its long-term support and technical maturity. From our perspective, this migration has provided meaningful operational and financial benefits, and helped us simplify and standardize how we deliver and maintain services internally.
👉 Got a use case? Share it with our maintainers! We'll showcase it to the community.
In a recent infrastructure transition that spanned several months, our team explored alternative container orchestration platforms to simplify operations and optimize costs. At the time, our environment consisted of nearly a hundred AWS accounts running multiple ECS services, along with managed PostgreSQL, Redis, RabbitMQ, and ALBs.
One of the goals was to consolidate our deployment architecture under Kubernetes while maintaining support for stateful services, without introducing significant operational complexity. After evaluating different options, we decided to adopt Cozystack, primarily due to its all-in-one approach and compatibility with bare-metal infrastructure.
Cozystack is built on Talos Linux, which provides immutable and secure nodes, and includes a set of pre-packaged Helm-ready applications such as PostgreSQL, Redis, RabbitMQ, and Ingress-NGINX. These built-in components allowed us to accelerate the initial setup while maintaining flexibility for customization.
Currently, we manage two Kubernetes clusters—each composed of three control-plane and three worker nodes, with capacity planned for scaling. Based on our infrastructure modeling and cost tracking, we expect a 7× to 10× reduction in spend compared to our previous AWS setup.
During the initial phase, migrating and tuning each environment, including adapting Helm charts, took more than a day. Through iteration and process improvements, we’ve since reduced this time: today, standard environments can be provisioned and configured in roughly one day.
We also restructured our observability tooling during this process. We adopted Loki for centralized log collection, complementing the existing metrics and Grafana dashboards already available through the platform.
Cozystack’s recent joining CNCF Sandbox gave us additional reassurance regarding its long-term support and technical maturity. From our perspective, this migration has provided meaningful operational and financial benefits, and helped us simplify and standardize how we deliver and maintain services internally.
👉 Got a use case? Share it with our maintainers! We'll showcase it to the community.
1❤3👍2🤔1
🎉 We’ve just published the official support pricing for open-source platform, Cozystack
If you’re running Kubernetes, databases, VMs, S3, or other managed services on your own infrastructure, you can now buy enterprise support directly from us—or simply pick the entry-level plan to support ongoing development of the project.
What you get:
- SLA-backed commitments with flexible billing (monthly or annual with 20% off).
- Enterprise-level features like white labeling, air gap installation, billing, etc.
- Personalized support and time we dedicate to your custom roadmap each month.
- Clear response windows: 24x7 or business hours.
- Emergency incidents are prioritized (production down, no workaround).
- 30-day installation support—installation incidents reported in this window don’t count toward incident limits.
- And much more!
See our ROI Calculator to estimate 3-year savings vs. public clouds, in-house builds, or vendor-by-vendor support.
👉 Pricing & plans: aenix.io/pricing
👉 Want enterprise features or a custom engagement? Write to us or assign a meeting with our founders.
Cozystack is and remains free & open source—commercial support simply helps you move faster with a partner who builds the platform every day, while also funding continued development for the community.
If you’re running Kubernetes, databases, VMs, S3, or other managed services on your own infrastructure, you can now buy enterprise support directly from us—or simply pick the entry-level plan to support ongoing development of the project.
What you get:
- SLA-backed commitments with flexible billing (monthly or annual with 20% off).
- Enterprise-level features like white labeling, air gap installation, billing, etc.
- Personalized support and time we dedicate to your custom roadmap each month.
- Clear response windows: 24x7 or business hours.
- Emergency incidents are prioritized (production down, no workaround).
- 30-day installation support—installation incidents reported in this window don’t count toward incident limits.
- And much more!
See our ROI Calculator to estimate 3-year savings vs. public clouds, in-house builds, or vendor-by-vendor support.
👉 Pricing & plans: aenix.io/pricing
👉 Want enterprise features or a custom engagement? Write to us or assign a meeting with our founders.
Cozystack is and remains free & open source—commercial support simply helps you move faster with a partner who builds the platform every day, while also funding continued development for the community.
👍3🔥3❤1🥰1
⌛️LAST CHANCE: Your Voice, Global Stage
The CozySummit Virtual 2025 CFP closes September 21 at 23:59 (UTC)!
CozySummit Virtual 2025 expands access to real-world cloud-building expertise through a fully virtual, globally accessible event. With practical deep dives, hands-on tutorials, and user success stories, learn how Cozystack empowers teams to build full-featured private clouds or AWS-alternative public clouds on owned hardware.
Let’s show the world how to reduce public cloud dependency, ensure data control, and enable digital sovereignty!
This is it. Final hours!
Submit now ➡️ https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025/
#CozySummit #CFP #CallForProposals #PrivateCloud #Cozystack #CNCF
The CozySummit Virtual 2025 CFP closes September 21 at 23:59 (UTC)!
CozySummit Virtual 2025 expands access to real-world cloud-building expertise through a fully virtual, globally accessible event. With practical deep dives, hands-on tutorials, and user success stories, learn how Cozystack empowers teams to build full-featured private clouds or AWS-alternative public clouds on owned hardware.
Let’s show the world how to reduce public cloud dependency, ensure data control, and enable digital sovereignty!
This is it. Final hours!
Submit now ➡️ https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025/
#CozySummit #CFP #CallForProposals #PrivateCloud #Cozystack #CNCF
🔥2❤1
🎥 Cozystack community meeting 2025-09-18: Dashboard progress, CozySummit, CozystackResourceDefinition
https://youtu.be/VytX_IooTL8
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- Please add your org into ADOPTERS https://github.com/cozystack/cozystack/blob/main/ADOPTERS.md
- Cozystack v0.36 release announcement https://github.com/cozystack/cozystack/releases/tag/v0.36.0
- Dashboard progress review
- CozystackResourceDefinition https://github.com/cozystack/cozystack/blob/377fc39756d0d6a6c841abac8f5f84ae2b573a9c/packages/system/cozystack-api/templates/cozystack-resource-definitions/postgres.yaml
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
https://youtu.be/VytX_IooTL8
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025
- Please add your org into ADOPTERS https://github.com/cozystack/cozystack/blob/main/ADOPTERS.md
- Cozystack v0.36 release announcement https://github.com/cozystack/cozystack/releases/tag/v0.36.0
- Dashboard progress review
- CozystackResourceDefinition https://github.com/cozystack/cozystack/blob/377fc39756d0d6a6c841abac8f5f84ae2b573a9c/packages/system/cozystack-api/templates/cozystack-resource-definitions/postgres.yaml
Join the community:
Telegram group t.me/cozystack
Slack group (Get invite at https://slack.kubernetes.io)
Cozystack resources:
https://cozystack.io
https://cozystack.io/docs/get-started
https://cozystack.io/blog
https://github.com/aenix-io/cozystack
Ænix resources
https://aenix.io
https://news.1rj.ru/str/aenix_io
https://news.1rj.ru/str/aenix_community
YouTube
Cozystack community meeting 2025-09-18: Dashboard progress, CozySummit, CozystackResourceDefinition
Cozystack is a free PaaS and framework for building clouds | CNCF Sandbox Project
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
Agenda and notes: https://docs.google.com/document/d/1YObSKsQ3Gzi1gSLPlUp-PbSYEeVkoyzY20M_hXKVhq4/
- CozySummit https://community.cncf.io/events/details/cncf-virtual-project…
⚡4❤1
😜 Cozystack v0.36: Server-side Encryption for S3, Kube-OVN Cluster Health Monitor, REST API Documentation
The new version of Cozystack focuses on the stability, observability, and flexible configuration of managed applications.
👉 Major Features and Improvements
Per-Namespace Resource Limits for Tenants
Resource management for Cozystack tenants has received a final patch and is now graduated to a stable feature. Platform administrators can define explicit CPU, memory, and storage limits for each tenant's namespace via the tenant specification. This prevents any single tenant from consuming more than their share of cluster resources, ensuring cluster stability and a guaranteed service level for each tenant.
Kube-OVN Cluster Health Monitor
A new component called the Kube-OVN Plunger continuously monitors the health of the Kube-OVN network's central control cluster. This external agent gathers OVN cluster status and consensus information, exposing Prometheus metrics and live events stream via SSE. As a result, it provides much better visibility of the virtual network layer and helps maintain a reliable and observable network in Cozystack. This change opens the road to automated Kube-OVN database operations and recovery in specific corner cases.
Configurable CoreDNS Addon for Kubernetes
Cozystack introduces a dedicated CoreDNS addon for managing cluster DNS with greater flexibility. CoreDNS is now deployed via a Helm chart and can be tuned through custom values in the cluster specification, including autoscaling, replica count, and adjusting service IP. CoreDNS can now be configured in the dashboard and using Cozystack API.
Granular SeaweedFS Service Configuration
The SeaweedFS S3 storage service in Cozystack is now far more configurable at a component level. The Helm chart for SeaweedFS now includes independent configuration for each component and its resources. It includes the master nodes, volume servers with support for multiple zones, filers, the backing database, and the S3 gateway. Administrators can set per-component parameters such as the number of replicas, available CPU, memory, and storage size.
Server-side Encryption for S3
Cozystack v0.36.0 includes SeaweedFS 3.97, bringing support for server-side encryption of S3 buckets (SSE-C, SSE-KMS, and SSE-S3).
Breaking change: upon updating Cozystack, SeaweedFS will be updated to a newer version, and the services specification will be converted to the new format.
Custom Resource Profiles for Ingress Controller
NGINX controller is now configurable on a per-replica basis. Configurations include the ingress controller pods' CPU and memory requests/limits, either with direct values or using one of the available presets.
Built-in LLDP-Based Neighbor Discovery in Talos
Cozystack now includes the LLDPD extension in its Talos OS image, enabling Link Layer Discovery Protocol (LLDP) out of the box. This means each node can automatically discover and advertise its network neighbors and topology without any manual setup.
Use external IP for Egress Traffic in VMs
When a virtual machine has an external IP assigned to it, it will now always use it for egress traffic, independently of the external method used.
🔔 New components versions
- Update LINSTOR to v1.31.3
- Update SeaweedFS to v3.97
- Update Kube-OVN to 1.14.5
- Replace Bitnami images with alternatives in all charts
📚 New Documentation
- REST API Reference
- How to add a node to a Cozystack cluster
- Troubleshooting LINSTOR controller crash loops
- Troubleshooting LINSTOR CrashLoopBackOff related to a broken database
- Troubleshooting Piraeus custom resources
All changes: v0.36.0, v0.36.1, v0.36.2
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
The new version of Cozystack focuses on the stability, observability, and flexible configuration of managed applications.
👉 Major Features and Improvements
Per-Namespace Resource Limits for Tenants
Resource management for Cozystack tenants has received a final patch and is now graduated to a stable feature. Platform administrators can define explicit CPU, memory, and storage limits for each tenant's namespace via the tenant specification. This prevents any single tenant from consuming more than their share of cluster resources, ensuring cluster stability and a guaranteed service level for each tenant.
Kube-OVN Cluster Health Monitor
A new component called the Kube-OVN Plunger continuously monitors the health of the Kube-OVN network's central control cluster. This external agent gathers OVN cluster status and consensus information, exposing Prometheus metrics and live events stream via SSE. As a result, it provides much better visibility of the virtual network layer and helps maintain a reliable and observable network in Cozystack. This change opens the road to automated Kube-OVN database operations and recovery in specific corner cases.
Configurable CoreDNS Addon for Kubernetes
Cozystack introduces a dedicated CoreDNS addon for managing cluster DNS with greater flexibility. CoreDNS is now deployed via a Helm chart and can be tuned through custom values in the cluster specification, including autoscaling, replica count, and adjusting service IP. CoreDNS can now be configured in the dashboard and using Cozystack API.
Granular SeaweedFS Service Configuration
The SeaweedFS S3 storage service in Cozystack is now far more configurable at a component level. The Helm chart for SeaweedFS now includes independent configuration for each component and its resources. It includes the master nodes, volume servers with support for multiple zones, filers, the backing database, and the S3 gateway. Administrators can set per-component parameters such as the number of replicas, available CPU, memory, and storage size.
Server-side Encryption for S3
Cozystack v0.36.0 includes SeaweedFS 3.97, bringing support for server-side encryption of S3 buckets (SSE-C, SSE-KMS, and SSE-S3).
Breaking change: upon updating Cozystack, SeaweedFS will be updated to a newer version, and the services specification will be converted to the new format.
Custom Resource Profiles for Ingress Controller
NGINX controller is now configurable on a per-replica basis. Configurations include the ingress controller pods' CPU and memory requests/limits, either with direct values or using one of the available presets.
Built-in LLDP-Based Neighbor Discovery in Talos
Cozystack now includes the LLDPD extension in its Talos OS image, enabling Link Layer Discovery Protocol (LLDP) out of the box. This means each node can automatically discover and advertise its network neighbors and topology without any manual setup.
Use external IP for Egress Traffic in VMs
When a virtual machine has an external IP assigned to it, it will now always use it for egress traffic, independently of the external method used.
🔔 New components versions
- Update LINSTOR to v1.31.3
- Update SeaweedFS to v3.97
- Update Kube-OVN to 1.14.5
- Replace Bitnami images with alternatives in all charts
📚 New Documentation
- REST API Reference
- How to add a node to a Cozystack cluster
- Troubleshooting LINSTOR controller crash loops
- Troubleshooting LINSTOR CrashLoopBackOff related to a broken database
- Troubleshooting Piraeus custom resources
All changes: v0.36.0, v0.36.1, v0.36.2
Join the community
- Telegram group
- Slack group (Get invite at https://slack.kubernetes.io)
🔥8❤5
Hi there! We’ve just submitted our application to move from CNCF Sandbox to Incubating. We’d love your support — drop a like to cheer us on. It won’t sway the TOC’s decision, but it means a lot to us.
Why it matters: CNCF Incubating signals a more mature project that’s ready for production use. It also attracts contributors and unlocks extra CNCF opportunities to help us grow.
👉 https://github.com/cncf/toc/issues/1916
Why it matters: CNCF Incubating signals a more mature project that’s ready for production use. It also attracts contributors and unlocks extra CNCF opportunities to help us grow.
👉 https://github.com/cncf/toc/issues/1916
🔥11❤9👍2👏1
Media is too big
VIEW IN TELEGRAM
It’s happened! We've finally officially released the new dashboard in Cozystack v0.37 🎉
6🎉20🔥11❤6
👻 CozySummit lineup
Yaaay! We’ve published the schedule for CozySummit 2025 Virtual—an online conference for Cozystack developers and users, hosted together with the CNCF. The talk lineup looks great. Just look at that!
Wednesday, December 3, 2025
16:00 CET (9:00 AM CT) Opening/Intro by Andrei Kvapil, Cozystack Maintainer, Ænix CEO&Founder
16:05 CET (9:05 AM CT) "How we build a multi-AZ cloud in Switzerland", by Matthieu Robin, Hidora
16:40 CET (9:40 AM CT) "Home Lab to the Moon and Back", by Kingdon Barrett, Navteca, LLC
17:20 CET (10:20 AM CT) "Extensibility without chaos: lessons from building Cozystack", by Timofei Larkin, Ænix
17:55 CET (10:55 AM CT) "From AWS EC2 to Cozystack: A Beginner’s Roadmap to Cloud Independence", by Kirti Goyal
18:10 CET (11:10 AM CT) "Integrating Proxmox with CozyStack: Advanced Container and Pod Isolation", by Marian Koreniuk
18:25 CET (11:25 AM CT) "SeaweedFS S3 API in 2025: Enterprise‑grade security and control", by Chris Lu, SeaweedFS
18:40 CET (11:40 AM CT) "Cozystack Storage Deep Dive", by Moritz Wanzenböck, LINBIT
19:10 CET (12:10 PM CT) Closing Remarks by Andrei Kvapil
Check out the speakers, register for the event, join us, and share with friends and colleagues!
Registration (button 'Get tickets' top left): https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025/
Yaaay! We’ve published the schedule for CozySummit 2025 Virtual—an online conference for Cozystack developers and users, hosted together with the CNCF. The talk lineup looks great. Just look at that!
Wednesday, December 3, 2025
16:00 CET (9:00 AM CT) Opening/Intro by Andrei Kvapil, Cozystack Maintainer, Ænix CEO&Founder
16:05 CET (9:05 AM CT) "How we build a multi-AZ cloud in Switzerland", by Matthieu Robin, Hidora
16:40 CET (9:40 AM CT) "Home Lab to the Moon and Back", by Kingdon Barrett, Navteca, LLC
17:20 CET (10:20 AM CT) "Extensibility without chaos: lessons from building Cozystack", by Timofei Larkin, Ænix
17:55 CET (10:55 AM CT) "From AWS EC2 to Cozystack: A Beginner’s Roadmap to Cloud Independence", by Kirti Goyal
18:10 CET (11:10 AM CT) "Integrating Proxmox with CozyStack: Advanced Container and Pod Isolation", by Marian Koreniuk
18:25 CET (11:25 AM CT) "SeaweedFS S3 API in 2025: Enterprise‑grade security and control", by Chris Lu, SeaweedFS
18:40 CET (11:40 AM CT) "Cozystack Storage Deep Dive", by Moritz Wanzenböck, LINBIT
19:10 CET (12:10 PM CT) Closing Remarks by Andrei Kvapil
Check out the speakers, register for the event, join us, and share with friends and colleagues!
Registration (button 'Get tickets' top left): https://community.cncf.io/events/details/cncf-virtual-project-events-hosted-by-cncf-presents-cozysummit-virtual-2025/
🔥5🎉2
But the ‘cloud’ is just someone else’s servers. Choose bare metal. Start with cozystack.io 😁
😁18🔥4👏1