kurtosis
Containers & OrchestrationKurtosis simplifies spinning up ephemeral dev or test stacks by abstracting Docker and Kubernetes orchestration into reusable, parameterizable packages.
Features
- Packaging system for distributing backend stack definitions that run on Docker or Kubernetes
- Runtime with per‑stack file management for reproducible state initialization
- Tools enabling developers to interact with stacks similarly to native Docker or k8s workflows
Recent releases
View all 39 releases →
1.18.0
Security relevant
Security fixes
- CVE-2026-33186 — grpc-go authz bypass patch in CLI and enclave-manager
Notable features
- shm size ulimits adjustments for GPU environments
Full changelog
1.18.0 (2026-04-14)
Features
Bug Fixes
- group dependabot updates by dependency name across directories (#2998) (d8bf5a7)
- reduce CI flakiness across log tests, K8s setup, and CLI tests (#3007) (817243a)
- security: bump vulnerable dependencies (#3008) (5a2d4b2)
- security: patch CVE-2026-33186 grpc-go authz bypass in cli and enclave-manager (#2985) (e393aa2)
- use pull_request_target for dependabot auto-merge (#2993) (3da8e12)
1.17.7
Breaking risk
Security fixes
- dep: Bumped cli/cli/v2 and cli/go-gh/v2 in the cli module to address security updates.
- dep: Updated go.opentelemetry.io/otel/sdk to v1.40.0 for security improvements.
Full changelog
1.17.7 (2026-03-25)
Bug Fixes
- kurtosis dump fails with permission denied on restrictive file artifacts (#2991) (f36ae68)
- replace deprecated goreleaser changelog.skip (#2988) (28e7841)
- security: bump cli/cli/v2 and cli/go-gh/v2 in cli module (#2990) (98e2078)
- security: bump go.opentelemetry.io/otel/sdk to v1.40.0 (#2989) (847d57b)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Community & Support
Similar tools
Alternative to
Docker Compose
Helm