Skip to main content

Welcome

k8shell is a Kubernetes-native platform for provisioning and accessing workspaces over SSH, through a browser-based Console, or via API.

We believe k8shell should be the platform for developing modern microservice architectures - and a place where AI coding agents run isolated, controlled, and without access to resources they don't need.

10,000 foot view

  • Workspaces on demand: Provision secure, ephemeral or persistent workspaces inside Kubernetes.
  • Access via SSH: No custom protocols, no plugins—just plain SSH. Works with any IDE, CLI, or terminal.
  • Security: OPA, TLS, pluggable identity providers, session auditing with eBPF, zero-trust ready.
  • Blueprint-driven provisioning: Reproducible workspaces: base images, volumes, networks, init scripts.
  • Integration with Kubernetes: Token-based credential helpers, affinity, and resource isolation.
  • Persistence and storage: Ephemeral or long-lived workspaces. Attach PVCs or object storage.
  • Universal language & tool support: Go, Python, Java, Node.js, Rust… anything that runs in a container.
  • Observability: Logs, metrics, traces (OpenTelemetry).
  • Scaling & multi-tenancy: Multi-user, multi-team, resource quotas.
  • Extensible architecture: REST and gRPC APIs, works with CI/CD pipelines.

All of this packaged as a Kubernetes-native platform.

Deploy via Helm/ArgoCD, integrate with your cluster, and you’re ready to go.