This repository is deprecated and will be archived on February 1st, 2026.
The Confidential Containers Operator has been superseded by the Confidential Containers Helm Chart, which is now the official and recommended way to deploy Confidential Containers.
Please migrate to the Helm chart:
# Uninstall the operator first, then install via Helm: helm install coco oci://ghcr.io/confidential-containers/charts/confidential-containers \ --namespace coco-systemFor detailed installation instructions, see the Helm chart documentation.
- Simpler installation: Single Helm command vs operator CRDs
- Better GitOps integration: Standard Helm values files
- Faster updates: Aligned directly with kata-containers releases
- Broader support: Multiple Kubernetes distributions (k3s, k0s, rke2, microk8s, kubeadm)
No further updates will be made to this repository.
This Confidential Containers Operator provides a means to deploy and manage Confidential Containers Runtime on Kubernetes clusters.
The primary resource is CcRuntime which describes runtime details like installation type, source, nodes to deploy etc.
Here is a short demo video showing the operator in action.
Instructions to recreate the demo setup in your own environment are available here
Please refer to the following instructions
Please refer to the following instructions
