Talos on Cozystack

Cozystack v0.39: Topology-Aware Routing, Windows VM Scheduling, Talm Overhaul, and VMAgent for Tenants

Tue, 23 Dec 2025 00:00:00 +0000

Cozystack v0.39: Topology-Aware Routing, Windows VM Scheduling, Talm Overhaul, and VMAgent for Tenants

Version 0.39 enhances networking, scheduling, and the tooling around Cozystack infrastructure management.

Major Features and Improvements

Topology-Aware Routing for Cilium

Cilium services now support topology-aware routing, keeping traffic local to the same zone or region when possible. This reduces latency and cross-zone network costs.

Automatic Cilium Pod Rollouts

Cilium pods now automatically roll out when their configuration changes, eliminating the need for manual restarts after config updates.

Talm v0.17: Built-in Age Encryption for Secrets Management

Wed, 17 Dec 2025 00:00:00 +0000

Talm v0.17: Built-in Age Encryption for Secrets Management

The latest release of Talm, the configuration manager for Talos Linux, introduces a powerful new feature: built-in encryption using the age encryption tool. This enhancement allows you to securely store sensitive configuration files like secrets.yaml, talosconfig, and kubeconfig in Git repositories while following security best practices.

Why Age Encryption?

Managing secrets in Git repositories has always been a challenge. While storing configuration files in version control is convenient for GitOps workflows, sensitive data like API keys, certificates, and cluster credentials should never be committed in plain text. Traditional solutions like git-crypt or external secret management systems add complexity and dependencies.

A Simple Way to Install Talos Linux on Any Machine, with Any Provider

Mon, 28 Apr 2025 00:00:00 +0000

A Simple Way to Install Talos Linux on Any Machine, with Any Provider

Talos Linux is a specialized operating system designed for running Kubernetes. In my opinion, it does that task better than others. First and foremost it handles full lifecycle management for Kubernetes control-plane components.

On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence of a shell and the inability to log in via SSH. All configuration of Talos Linux is done through a Kubernetes-like API.

Cozystack v0.22 Release: telemetry, patched Talos v1.9.1, new entities Workload and WorkloadMonitor

Fri, 17 Jan 2025 00:00:00 +0000

Cozystack v0.22 Release: telemetry, patched Talos v1.9.1, new entities Workload and WorkloadMonitor

Main changes

In the latest release was added cozystack-controller and new entities: Workload and WorkloadMonitor, which allow monitoring the state of pods managed by operators and evaluating the service level according to predefined rules.

Since different applications in Cozystack are managed by different operators, we decided to create a unified format for displaying the status of each service.

Cozystack v0.23: Talos Linux v1.9.2, Telegram Alert Severity, VM Instance Hooks, and Flux Operator Update

Fri, 17 Jan 2025 00:00:00 +0000

Cozystack v0.23: Talos Linux v1.9.2, Telegram Alert Severity, VM Instance Hooks, and Flux Operator Update

Version 0.23 improves alerting, VM lifecycle management, and updates core infrastructure components.

Major Features and Improvements

Talos Linux v1.9.2

Talos Linux is updated to v1.9.2, bringing security patches and stability improvements for the host OS.

Telegram Alert Severity Filtering

Operators can now configure severity filtering for Telegram alert notifications, reducing noise by only forwarding alerts of a specified severity level or higher.

Cozystack v0.15: OpenCost, Talos Metal Image, Backup Fixes, and Kamaji OOM Fix

Mon, 16 Sep 2024 00:00:00 +0000

Cozystack v0.15: OpenCost, Talos Metal Image, Backup Fixes, and Kamaji OOM Fix

Version 0.15 adds cost visibility, improves bare-metal provisioning, and fixes critical stability issues.

Major Features and Improvements

OpenCost

OpenCost is now integrated into Cozystack, providing resource cost tracking across the platform. Operators can see how much compute, storage, and network resources each tenant or application consumes.

Talos Linux Metal Image and Firmware Updates

The Talos Linux integration receives updated firmwares and a new metal image asset, simplifying bare-metal installations and supporting a wider range of hardware.

Introducing Talm, a configuration manager for Talos Linux

Wed, 29 May 2024 00:00:00 +0000

Author: Andrei Kvapil (Ænix)

The Cozystack project has released Talm, a configuration manager for Talos Linux

The developers of the open-source PaaS platform Cozystack have prepared the Talm project, aimed at simplifying the configuration of bare-metal servers for Talos Linux, an operating system designed to run Kubernetes with a Kubernetes-like API and configured via a single Yaml manifest. Although Talm was created to describe the declarative installation of Cozystack, it is not tied specifically to this platform and can be used to manage any Talos Linux configurations. The project is developed under the MPL license.