Issue No. 001·March 21, 2026·Seoul Edition
LanguageENKOJA
Back to home

Kloak

beta

A secret manager that keeps Kubernetes workload away from secrets

webApril 25, 2026
Visit Kloak
SecurityKubernetesSecrets Management
What It Does

Details

Kloak intercepts HTTPS traffic in Kubernetes using eBPF to replace hashed placeholders with real secrets at the network edge. Applications never see actual credentials, so compromised processes cannot leak secrets. Kloak can be installed with Helm.

Who It's For

Best fit users

  • Kubernetes users
  • Security engineers
  • DevOps teams
Why It Matters

Why this one made the cut

Kloak prevents secrets from being exposed to applications, reducing the risk of credential leaks. This agentless approach eliminates the need for code changes or sidecar proxies in Kubernetes workloads.

Differentiator

What makes it different

Kloak uses eBPF to transparently intercept secrets without requiring code changes or agents in Kubernetes applications.

Sources

Where we found it

Sources

GLOBAL · Hacker NewsENApr 25, 2026Visit

First discovered Apr 25, 2026 · Hacker News