Degraded performance due to Antivirus

Antivirus (AV) software introduces additional complexity to Kubernetes environments. Many AV solutions have not adapted to newer technologies like Kubernetes and lack CNCF certification. In environments where AV is enabled, interference from these tools has led to various issues.

For example, AV software has incorrectly pruned files within the ContainerD filesystem, resulting in corrupt mounts and data loss. Third-party tools, including AV and intrusion detection systems, may disrupt ContainerD or other critical system calls. Disabling these tools often resolves such issues.

Additionally, running AV software on Kubernetes nodes can degrade performance. Even when product paths are excluded, file scanning and inspection by AV can increase disk I/O and CPU usage, significantly slowing product performance. In severe cases, this can make our products unusable.

Finally, if a customer environment deviates from our supported configurations, we reserve the right to recommend reverting to a supported configuration to resolve any issues.